Implement signatures with private keys bound to TPM 2.0